1 Topic by w4buLmk39UwQhx!j&8^ (edited by w4buLmk39UwQhx!j&8^ 2022-12-01 05:24:00)

  • w4buLmk39UwQhx!j&8^
  • Member
  • Offline
  • Registered: 2022-12-01
  • Posts: 4

Topic: Cannot send from Roundcube

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): 1.6.2 MARIADB edition.
- Deployed with iRedMail Easy or the downloadable installer? wget from github.com/iredmail/iRedMail/archive/refs/tags/1.6.2.tar.gz
- Linux/BSD distribution name and version: My Debian 11 Disk Profile – GRUB 2
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Web server (Apache or Nginx): Nginx
- Manage mail accounts with iRedAdmin-Pro? N/A
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

When I try to send a mail from an additional user it fails with SMTP erros.

The following logs was found in /var/log/mail.log:
Nov 30 20:20:54 mail postfix/submission/smtpd[40752]: connect from mail.miitestingdomain.co.za[127.0.0.1]
Nov 30 20:20:54 mail roundcube: <1bpnsqbk> PHP Error: Invalid response code received from server (POST /mail/?_task=mail&_unlock=loading1669839654305&_framed=1&_action=send)
Nov 30 20:20:54 mail postfix/cleanup[40754]: 4NMrF22qbgz235r: message-id=<4NMrF22qbgz235r@mail.miitestingdomain.co.za>
Nov 30 20:20:54 mail postfix/qmgr[1796]: 4NMrF22qbgz235r: from=<double-bounce@mail.miitestingdomain.co.za>, size=922, nrcpt=1 (queue active)
Nov 30 20:20:54 mail postfix/submission/smtpd[40752]: disconnect from mail.miitestingdomain.co.za[127.0.0.1] ehlo=1 starttls=0/1 quit=1 commands=2/3
Nov 30 20:20:54 mail roundcube: <1bpnsqbk> SMTP Error: Authentication failure: Invalid response code received from server (Code: 454) in /opt/www/roundcubemail-1.5.3/program/lib/Roundcube/rcube.php on line 1778 (POST /mail/?_task=mail&_unlock=loading1669839654305&_framed=1&_action=send)
Nov 30 20:20:54 mail postfix/cleanup[40754]: 4NMrF22wkqz2369: message-id=<4NMrF22qbgz235r@mail.miitestingdomain.co.za>
Nov 30 20:20:54 mail postfix/qmgr[1796]: 4NMrF22wkqz2369: from=<double-bounce@mail.miitestingdomain.co.za>, size=1088, nrcpt=1 (queue active)
Nov 30 20:20:54 mail postfix/local[40756]: 4NMrF22qbgz235r: to=<postmaster@mail.miitestingdomain.co.za>, orig_to=<postmaster>, relay=local, delay=0.02, delays=0/0/0/0.01, dsn=2.0.0, status=sent (forwarded as 4NMrF22wkqz2369)
Nov 30 20:20:54 mail postfix/qmgr[1796]: 4NMrF22qbgz235r: removed
Nov 30 20:20:54 mail postfix/pipe[40757]: 4NMrF22wkqz2369: to=<postmaster@miitestingdomain.co.za>, orig_to=<postmaster>, relay=dovecot, delay=0.03, delays=0/0/0/0.03, dsn=2.0.0, status=sent (delivered via dovecot service)
Nov 30 20:20:54 mail postfix/qmgr[1796]: 4NMrF22wkqz2369: removed

This is the bouncback I get in postmaster's mailbox:
Transcript of session follows.

Out: 220 mail.miitestingdomain.co.za ESMTP Postfix
In:  EHLO mail-io1-f54.google.com
Out: 250-mail.miitestingdomain.co.za
Out: 250-PIPELINING
Out: 250-SIZE 15728640
Out: 250-ETRN
Out: 250-STARTTLS
Out: 250-ENHANCEDSTATUSCODES
Out: 250-8BITMIME
Out: 250-DSN
Out: 250-SMTPUTF8
Out: 250 CHUNKING
In:  STARTTLS
Out: 454 4.7.0 TLS not available due to local problem

Session aborted, reason: lost connection

For other details, see the local mail logfile

Any/some help would be appreciated. thanks

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by Cthulhu

  • Cthulhu
  • Member
  • Offline
  • Registered: 2019-06-04
  • Posts: 907

Re: Cannot send from Roundcube

TLS error, i guess cert error/missing or wrong TLS settings

3 Reply by w4buLmk39UwQhx!j&8^

  • w4buLmk39UwQhx!j&8^
  • Member
  • Offline
  • Registered: 2022-12-01
  • Posts: 4

Re: Cannot send from Roundcube

Cthulhu wrote:

TLS error, i guess cert error/missing or wrong TLS settings

Thanks, will relook the SSL cert

4 Reply by w4buLmk39UwQhx!j&8^

  • w4buLmk39UwQhx!j&8^
  • Member
  • Offline
  • Registered: 2022-12-01
  • Posts: 4

Re: Cannot send from Roundcube

Hi There
Could you possibly provide me with the steps in installing my Cloudflare SSL cert on the server?

5 Reply by Cthulhu (edited by Cthulhu 2022-12-16 00:01:22)

  • Cthulhu
  • Member
  • Offline
  • Registered: 2019-06-04
  • Posts: 907

Re: Cannot send from Roundcube

Don't use your mailserver behind cloudflare

all mail related DNS should't be proxied by cloudflare at all:

https://support.cloudflare.com/hc/en-us … Cloudflare

Best practices for MX records on Cloudflare
Follow these guidelines to ensure successful delivery of your mail traffic:

Use separate IP addresses for mail traffic and HTTP/HTTPS traffic. Cloudflare recommends using non-contiguous IPs from different IP ranges.
Since mail traffic cannot be proxied through Cloudflare by default, you will expose your origin web server’s IP address. Information on your origin IP address would allow attackers to bypass Cloudflare security features and attack your web server directly.

6 Reply by w4buLmk39UwQhx!j&8^

  • w4buLmk39UwQhx!j&8^
  • Member
  • Offline
  • Registered: 2022-12-01
  • Posts: 4

Re: Cannot send from Roundcube

My mail DNS record is not proxied on Cloudflare.

I did however, when I installed this server, install a LE cert, but also has a wildcard cert from Cloudflare, and I'm thinking that these two are making it difficult for me to actually send mail